Ingo Folder Name Arbitrary Command Injection

2006-10-18T03:03:54
ID OSVDB:29894
Type osvdb
Reporter OSVDB
Modified 2006-10-18T03:03:54

Description

Solution Description

Upgrade to version 1.1.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.horde.org/ingo/ Vendor Specific Advisory URL Secunia Advisory ID:22656 Secunia Advisory ID:23100 Secunia Advisory ID:22482 Other Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200611-22.xml CVE-2006-5449